Add identity_allocation_mode support for Cilium (#8430)

Co-authored-by: Emin Aktaş <eminaktas34@gmail.com> Co-authored-by: Yasin Taha Erol <yasintahaerol@gmail.com> Signed-off-by: necatican <necaticanyildirim@gmail.com> Co-authored-by: Emin Aktaş <eminaktas34@gmail.com> Co-authored-by: Yasin Taha Erol <yasintahaerol@gmail.com>
2026-01-31 17:19:17 -03:30 · 2022-01-16 20:29:28 +03:00
parent c0d1bb1a5c
commit caff539ccd
8 changed files with 42 additions and 2 deletions
--- a/docs/cilium.md
+++ b/docs/cilium.md
@@ -15,7 +15,7 @@ balancer deployed by Kubespray and **only contacts the first master**.
 ## Choose Cilium version

 ```yml
-cilium_version: v1.9.9
+cilium_version: v1.11.0
 ```

 ## Add variable to config
@@ -29,6 +29,16 @@ cilium_config_extra_vars:
  enable-endpoint-routes: true
 ```

+## Change Identity Allocation Mode
+
+Cilium assigns an identity for each endpoint. This identity is used to enforce basic connectivity between endpoints.
+
+Cilium currently supports two different identity allocation modes:
+
+- "crd" stores identities in kubernetes as CRDs (custom resource definition).
+  - These can be queried with `kubectl get ciliumid`
+- "kvstore" stores identities in an etcd kvstore.
+
 ## Install Cilium Hubble

 k8s-net-cilium.yml: